CVE-2012-4515

Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
VendorProductVersion
kdekde
4.7.3
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kde-baseapps
zesty
not-affected
yakkety
ignored
xenial
not-affected
wily
ignored
vivid
ignored
utopic
ignored
trusty
dne
saucy
ignored
raring
ignored
quantal
ignored
precise
ignored
oneiric
ignored
natty
dne
lucid
dne
hardy
dne
kdebase
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
ignored
lucid
ignored
hardy
ignored
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html
http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=4f2eb356f1c23444fff2cfe0a7ae10efe303d6d8
http://secunia.com/advisories/51097
http://secunia.com/advisories/51145
http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc
http://www.openwall.com/lists/oss-security/2012/10/11/11
http://www.openwall.com/lists/oss-security/2012/10/30/6
http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html
http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=4f2eb356f1c23444fff2cfe0a7ae10efe303d6d8
http://secunia.com/advisories/51097
http://secunia.com/advisories/51145
http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc
http://www.openwall.com/lists/oss-security/2012/10/11/11
http://www.openwall.com/lists/oss-security/2012/10/30/6